metasploit | 9df5c89e6e5f588c626720319bda50a705651821411f84eb485115188f3e381c | Triage

Sharing

General

Target

9df5c89e6e5f588c626720319bda50a705651821411f84eb485115188f3e381c
Size

14KB
Sample

241228-t67efazper
MD5

8b202a16a5df007cc9b6d23f0bdfebc5
SHA1

6264fbc3938f67e20f31114d5712e3501e343555
SHA256

9df5c89e6e5f588c626720319bda50a705651821411f84eb485115188f3e381c
SHA512

6c9965cc2d2be5ff641209a97690be020af14e08148c182ea136a113dd6beea3786d719f94143e7ad0802e2a30703ee3ada0f18b130fc93a6137150296932754
SSDEEP

192:E3mbPYCfMcrfOIuZmvKQxtzlSIVX6NO24t0kUejDMN1:LMCfrfQ6tBSINCeUN1

Score

10^/10

metasploit backdoor discovery trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://10.0.0.124:6666/w2qB

Attributes

headers User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0)

Targets

- Target
  
  9df5c89e6e5f588c626720319bda50a705651821411f84eb485115188f3e381c
- Size
  
  14KB
- MD5
  
  8b202a16a5df007cc9b6d23f0bdfebc5
- SHA1
  
  6264fbc3938f67e20f31114d5712e3501e343555
- SHA256
  
  9df5c89e6e5f588c626720319bda50a705651821411f84eb485115188f3e381c
- SHA512
  
  6c9965cc2d2be5ff641209a97690be020af14e08148c182ea136a113dd6beea3786d719f94143e7ad0802e2a30703ee3ada0f18b130fc93a6137150296932754
- SSDEEP
  
  192:E3mbPYCfMcrfOIuZmvKQxtzlSIVX6NO24t0kUejDMN1:LMCfrfQ6tBSINCeUN1
Score

10^/10

metasploit backdoor discovery trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metasploitbackdoordiscoverytrojan

behavioral2

metasploitbackdoordiscoverytrojan